HTC has now agreed to provide a patch within 30 days and be subject to a security review for the next 20 years.
Android OEMs get much more leeway from the press.
Strike Two Against HTC’s Software Prowess
The verbose debugging logs demonstrated in Trevor Eckhart’s video are a risk to privacy, and should be corrected by HTC (the author of the responsible code) by disabling these debugging messages.
Remember Strike One?
Who in the right mind would purchase an HTC OS device after these two major security issues.
The issue may be in HTC’s code and not android’s, but this isn’t good for a company that just mentioned their intention to build their own OS.